c.schmitzkps.de

• Next message: John Ritchie: "Re: AW: [suse-security] Web server security holes ?"
• Previous message: Stefan Becker: "AW: [suse-security] Web server security holes ?"
• Maybe in reply to: Carsten Schmitz: "[suse-security] Cracking passwd file on suse systems"
• Next in thread: Wood, Alan: "RE: [suse-security] Cracking passwd file on suse systems"
• Maybe reply: Carsten Schmitz: "Re: [suse-security] Cracking passwd file on suse systems"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello...

>>
>> I want to check the passwd-file for insecure passwords.
>> Is there a way to do this easily?

> I think that SuSE carries in its distributions some tools for this, you
> can
> try "john the ripper" for example that i think comes directly with SuSE;
> You
> can search on www.linuxapps.com or another utility search engine anyway.

>> User just have pop-access to their accounts, no telnet, so forcing the
>> user
>> to change the password from time to time is not possible.

Thank you for your quick answer. Yes.. John the Ripper was the right tool...
I was horrified how easily it finds out the passwords...

Greetings,

Carsten

---------------------------------------------------------------------
To unsubscribe, e-mail: suse-security-unsubscribesuse.com
For additional commands, e-mail: suse-security-helpsuse.com

• Next message: John Ritchie: "Re: AW: [suse-security] Web server security holes ?"
• Previous message: Stefan Becker: "AW: [suse-security] Web server security holes ?"
• Maybe in reply to: Carsten Schmitz: "[suse-security] Cracking passwd file on suse systems"
• Next in thread: Wood, Alan: "RE: [suse-security] Cracking passwd file on suse systems"
• Maybe reply: Carsten Schmitz: "Re: [suse-security] Cracking passwd file on suse systems"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]